PC Gamer

Still using WinRAR? It might be time for an update, as a zero-day vulnerability is being 'exploited in the wild in the guise of job application documents'

There's something about the WinRAR stacked-book logo that makes me all nostalgic, giving me a proper case of the warm fuzzies deep inside. What turns those fuzzies into ouchies, however, is the idea ...
TechRadar

More WinRar security flaws are being exploited to attack foreign embassies

The list of threat actors abusing a vulnerability in WinRAR that was first discovered last spring is continuing to grow, with the latest addition being APT29, a Russian state-sponsored threat actor ...
Ars Technica

High-severity WinRAR 0-day exploited for weeks by 2 groups

A high-severity zero-day in the widely used WinRAR file compressor is under active exploitation by two Russian cybercrime groups. The attacks backdoor computers that open malicious archives attached ...
PC Magazine

Microsoft's Flawed Approach to App Updates Wreaks Havoc on Windows PCs

WinRAR has a massive security hole that’s still being actively exploited, and it’s one of many Windows applications that do not auto-update. The developer boasts of more than 500 million WinRAR ...
Bleeping Computer

Google links WinRAR exploitation to Russian, Chinese state hackers

The CVE-2023-38831 WinRAR flaw has been under active exploitation as a zero-day since at least April 2023, allowing threat actors to gain code execution on their targets' systems by tricking them into ...